TRANSMITTAL LETTER TO THE UMTEDS^^S 
DESIGNATED/ELECTED OFHCE (DO/EO/US) 
CONCERNING A FILING UNDER 35 U.S.C. 371 



01819/RPM 



Ui. AmjCAtIONNa(Ifltaon.aa37CFR U 



INTERNATIONAL AK»UCATION NO. INTERNATIONAL FILING DATE 

PCT/EP 00/05642 19/JUNE/2000 



PRIORnY DAIE (XAIMED 

25 JUNE 1999 



SYSTEBTTDR PROTECTED STORAGE AND MANAGE^iENT IM A TMW SEmm. 



APPUCANTTS) FOR DOEOrtJS 



Marten DE BOER and Geert KLEINHUIS 



Appiicant herewith submits to the United States Designattd/EIected Office (DQ^SAJS) Oe Mowing iteais 

1. ^ This is a FIRST submission of items concerning a filing lOKier 3S US.C. 371. 

2. Q This is a SECOND or SUBSEQUENT sufamission of items concKning a Slii^ under 35 U.S.C. 371. 

3. 0 This is an express request to begin national examination procedures (35 U.S.C. 371(f)). The sidnnission must include 
items (5), (6), (9) and (21) indicated below. 
CD The US has been elected by the expiration of 19 mondis from the priority date (Article 31). 
5.0 A copy of the Intemarional .Application as filed (35 U.S.C. 371(c)(2)) 

a. 0 is attached hereto (required only if not communicated by the International Bureau). 

b. ^ has been communicated by the International Bureau. 

c. Q is not required, as die application was Sled in the United States Receiving Office (RO/US). 

6. Q An English language translation of the International Application as filed (35 U.S.C. 371(c)(2)). 

a. Q is attached hereto. 

b. Q has been previously submitted under 35 U.S.C. 154(d)(4), 

7. Q Amendments to die claims of die International Aplication under PCT Article 19 (35 U.S.C. 371(c)(3)) 

a. Q are attached hereto (required only if not communicated by the International Bureau). 

b. Q have been communicated by die Intemationai Bureau. 

c. Q have not been made; however, the time limit for making such amendments has NOT expired. 

d. Q have not been made and will not be made. 

8. 0 An English language translation of die amendments to the claims under PCT Article 19 (35 U.S.C. 371 (c)(3)). 
9. □ An oath or declaration of die inventor(s) (35 U.S.C. 371(c)(4)). 

lO.O An English lanugage translation of the annexes of the Intemationai Preliminary Examination Report under PCT 
Article 36 (35 U.S.C. 37I(cX5)). 

Items 11 to 20 below concern docameat(s) or information indoded: 

1 1 . S An Information Disclosure Statement under 37 CFR 1.97 and 1.98. 

12. Q An assignment document for recording. A sqjarate cover sheet in compliance witii 37 CFR 3J8 and 3 Jl is included. 
13.S A FIRST preliminary amendment 

14. □ A SECOND or SUBSEQUENT preliminary amendment. 

15.0 A substitute specification. 

1 6. Q A change of power of attorney and/or address letter. 

17.0 A computer-readable form of the sequence listing in accordance with PCT Rule 13ter2 and 35 U.S.C. 1-821 - 1.325. 

1 8. Q A second copy of die published intemationai application under 35 U.S.C. 154(d)(4). 

19. n A second copy of die English language translation of the imemational appiication under 35 U.S.C. 154(d)(4). 

20.12 Odier items or infimnation: Express M.a Mailln« No.: 

. EV 0444 65569US 



Int. Search Report; Int'l. Preliminary 
Exam. Report; Dutch priority document 
w/translation; Request for Publn. of 
Assignment Infor; Change of Address 
Correspondence form; 3 sheets formal 
drawings (Figs. 1-3) ;. Published Int'l.; 
Appln. Pub. Pub. No. WO/01/01629A17 
Forms PCT/ISA/220; PCT/IPEA/402 ; 
PCT/IPEA/401; PCT/IPEA/416; 
PCT/RG/101; PCT/RO/105 



Daisof Deposa: 

December 17, 2001 

I hereby certify Sat tiis oaoer and any pspcn identiiieii 
a being (ieposited with ihe United States PtBtaJ Service *' 
Maii Po« Office to Addressee* service under 37 CFR. l.IC 
date indicated at 

I.D.C 20231 




c'dPCT/PTO 17 DEC2O01 



u.s:ai>pucationno ar 



INTHRNATIONAJ, .VPLICATIOT 

PCT/EP 00/05642 



21 .1X1 The following fees are submitted: 
BASIC NATIONAL FEE (37 CFR 1.492 (a) (1) - (5)): 
Neither intemanond preliminary examination fee (37 CFR 1.482) 
nor international search fee (37 CFR l.445(aX2)) paid to USPTO 
and International Searcii Report not prepared by the EPO or JPO SI 040.00 



International preliminary e 



B fee (37 CFR 1.482) not paid to 



USPTO but International Search Report prepared by the EPO or JPO SS90.00 

Intemationai preliminary fflcamination fee (37 CFR 1.482) not paid to USPTO 

but intemationai search fee (37 CFR 1.445(aX2)) paid to USPTO S740.00 

Intemationai preliminary examination fee (37 CFR 1.482) paid to USPTO 

but all claims did not satisfy provisions of PCT Article 33(l)-(4) S710.00 

Intemationai preliminary examination fee (37 CFR 1.482) paid to USPTO 

and all claims satisfied provisions of PCT Article 33(1X4) SIOO.OO 

ENTER APPROPRIATE BASIC FEE AMOUNT = 



CALCULATIONS PTO USE ONLY 



S 890.00 



Surcharge of S130.00 for furnishing the oath or declaration later than Q 20 Q 30 
months from the earliest claimed priority date (37 CFR 1.492(e)). 



MJMBER FILED 



NUMBER EXTRA 



Independent claims 



jfflJLTIPLE DEPENDENT CLAIM(S) (if applicable) 



TOTAL OF ABOVE CALCULATIONS = 



S 890.00 



i=pH Applicant claims small entity status. See 37 CFR 1.27. The fees indicated above 
are reduced by 1/2. 



SUBTOTAL = 



;ffii-ocessing fee of S 130.00 for furnishing the English translation later than Q 20 Q 30 
;it(onths from the earliest claimed priority date (37 CFR 1.492(f)). 



TOTAL NATIONAL FEE 



:Eie for recording the enclosed assignment (37 CFR 121(h)). The assignment must be 
accompanied by an appropriate cover sheet (37 CFR 3.28, 3.31). S40.00 per property 



S 890. 00_ 

S 



TOTAL FEES ENCLOSED 



S 890.00 



_ to cover the above fees is enclosed. 



b. Q Pleasechargemy Deposit Account No. 



n the amount of S _ 



. to cover the above fees. 



A duplicate copy of this sheet is enclosed. 

c. ^ The Commissioner is hereby audiorized to charze any additional fees which may be required, or credit any 

overpayment to Deposit Account No. 0 6- 1378 . a duplicate copy of this sheet is enclosed. 

d. Q Fees are to be charged to a credit card. WARNING: Information on this form may become piAlic. Credit card 

information sfaonld not be included on this form. Provide credit card infomiation and authorization on PTO-2038. 

NOTE: Where an appropriate time limit under 37 CFR 1.494 or 1.495 has not been met, a petition to revive (37 CFR 
1.137 (a) or (b)) must be Hied and granted to restore the application to pending stats 

SEND ALL CORRESPONDENCE TO: 

FRISHAUF, HOLTZ, GOODMAN, LANGER S CHICK 
767 Third Ave - 25th floor 
New York, N.Y. 10017-2023 



ROBERT P. MICHAL 



Dated: 



December 17, 2001 



35, 614 



REGISTEUTIGN >R;MBER 



RPM/a j j 



io/oie605- " 

JC13Ri0'dP€T/PT0 17 DEC 2001 



Attorney Docket No. 01819/RPM 



Applicant (s) 



IN THE UNITED STATES PATENT 
AND TRADEMARK OFFICE 



Serial No 



Based on PCT/EPOO/05642 



Marten DE BOER et al 




Express Mail Mailing Label 
No.: EV 0444 65569US 
Date of Deposit: December 17, 2001 
I hereby certify that this paper is being 
deposited with the United States Postal 
Service "Express Mail Post Office to 
Addressee" service under 37 CFR 1.10 on the 
date indicated above and is addressed to the 
Assistant Commissioner for Patents, 
Washington, D.C. 20231 



Filed 



Herewith 



For 



SYSTEM FOR PROTECTED STORAGE 
AND MANAGEMENT IN A TTP 
SERVER 



Art Unit 
Examiner 



PRELIMINARY AMENDMENT 



In the event that this Paper is late filed, 
and the necessary petition for extension of 
time is not filed concurrently herewith, 
please consider this as a Petition for the 
requisite extension of time, and to the 
extent not tendered by check attached 
hereto, authorization to charge the 
extension fee, or any other fee 
required in connection with this Paper 
to Account No. 06-1378. 



Assistant Commissioner for Patents 
SIR: 

IN THE SPECIFICATION : 

P^<Te 1: Please insert the following as the first sentence: 
— This application is a U.S. National Phase Application 

under 35 USC 371 of International Application PCT/EP 00/05642 

(published in English) filed June 19, 2000, — 

A marked-up copy of page 1 is attached hereto. 



Frishauf, Holtz, Goodman, Langer & Chick, P.C. 

767 Third Avenue - 25th Floor 

New York, New York 10017-2023 

Tel. No. (212) 319-4900 

Fax Nos. (212) 319-5101 

RPMraj j 



Respectfully submitted. 




Rcibert P. Michal 
Reg. No. 35,614 




10/018605 



WO 01/01629 



PCT/EPOO/05642 



1 



JC13B^'dPCT/PTG 17DEC2O0r 



System for protiactad storage asid oanagena&t ia a TIP sarvar. 



The izxvezicxon relates to a system for protected storage a nd 
management in a TTP server tTTP = Trusted Third Party] of copies 
of digital files treuosmitted, by way of a transmission channel, 
from a first to a second user. 

The invention relates to, in other words, a timeless key 
and storage system for the benefit of the long-term storage of 
electrmically exchanged (digitally protected) information and 
protectedly making available (secure retrieving) the stored data. 

The few known systems have the following drandaacks: 
1) Current protection techniques have a restricted hackability 

duration guarantee. 
2} Limited protection guarantees prior to, during and after 

long-term storage. 
3} Much storage space and effort are required for key 
management . 

4} Protected long-Cerm storage and the associated key and 
storage management is now either not regulated or very 
con^lex in setup. 

S) Due to the ever changing software and hardware, it is very 
difficult to guarantee electronic timelessness. 

B. SUMMftRY OF THE IHVENTiag 

The object of the invention is to overcome said drawbacks. 
For this purpose, the invention provides for a system having 
means for carrying out the functionalities: "Secure Archiving". 

"Re-encryption" and "Secure Retrieval", which will be discussed 
below. In this connection, the optional items "Digital Sign" and 

•Time Stamp" will be discussed sepsurately. 

"Secure Archiving" 

If, according to the current state of the art, a file is 
transmitted from a first user to a second user in a safe way, the 
file is enciphered with a symmetrical session key, which in its 
turn is enciphered with the public key of the second user. Said 
second user may decip he r the session key with his private key ?Tr>^ 
decipher the file itself with the session key deciphered in this 
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System for protected storage and management in a TTP server. 

BACKGROtJHD OF THE INVENTION 

The invention relates to a system for protected storage and 
management in a TTP server [TTP = Trusted Third Party] of copies 
of digital files transmitted, by way of a transmission channel, 
from a first to a second user. 

The invention relates to, in other words, a timeless key 
and storage system for the benefit of the long-term storage of 
electronically exchanged (digitally protected) information cUid 
protectedly making available (secure retrieving) the stored data. 

The few known systems have the following drawbacks : 

1) Current protection techniques have a restricted hackability 
duration guarantee. 

2) Limited protection guarantees prior to, during and after 
long-term storage. 

3) Much storage space and effort are required for key 
management . 

4) Protected long-term storage and the associated key and 
storage management is now either not regulated or very 
complex in setup. 

5) Due to the ever changing software and hardware, it is very 
difficult to guarantee electronic timelessness . 

B. SUMMARY OF THE INVENTION 

The object of the invention is to overcome said drawbacks. 
For this purpose, the invention provides for a system having 
means for carrying out the functionalities: "Secure Archiving", 
"Re-encryption" and "Secure Retrieval", which will be discussed 
below. In this connection, the optional items "Digital Sign" and 
"Time Stamp" will be discussed separately. 



"Secure Archiving" 

If, according to the current state of the art, a file is 
35 transmitted from a first user to a second user in a safe way, the 

file is enciphered with a symmetrical session key, which in its 
turn is enciphered with the public key of the second user. Said 
second user may decipher the session key with his private key and 
decipher the file itself with the session key deciphered in this 
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According to the invention, the session key is also 
enciphered by the first user with the pviblic key of em "in-line" 
TTP server (i.e., included in the transmission channel between 
the first and second users) , which TTP server deciphers the 
session key received with his private key. Thereafter, the TTP 
server enciphers the deciphered session key with a "pxiblic" 
storage key. The session key enciphered with said public storage 
key and the file enciphered with the session key are subsequently 
stored in a storage medium of the TTP. 

It should be noted that above and below there is spoken of 
public and private keys. These are generally known. In general, 
a public and a private key constitute an asymmetric pair of keys . 
If a file or a code is enciphered with the public key of an 
asymmetric pair of keys, said file or code may be deciphered only 
with the help of the associated private key and vice versa. In 
general, the public keys are available to "the public", e.g., by 
way of a publicly accessible data base, such as www.pgp.com. In 
the present application, it is assijmed that the users and the TTP 
each dispose of a pair of keys, each consisting of a public and a 
private key, and in particular intented for protecting the mutual 
data exchange of the files and codes. In addition, the TTP 
disposes of a pair of keys which is used within the TTP only; the 
"public" and private keys serve as protected storage or recovery 
("seciore retrieval"), as the CEise may be, of files and codes. 
The public storage key is not, as is normally the case for public 
keys, put at the disposal of the public. 

"Re-encryption" 

By way of "periodic maintencince" - from security 
considerations - the TTP server may at regular points in time 
store the file once again in the storage medium. For this 
purpose, the session key with which the file was enciphered is 
first recovered by deciphering - with the private storage key - 
the stored (enciphered) session key. Sxjbsequently, the 
enciphered file stored in the storage medivm is deciphered with 
the recovered session key. 

The TTP server then generates a new asymmetric pair of 
storage keys, consisting of a new pioblic storage key (which is 
not made available outside the TTP) and a new private storage 
key, and a new version of the symmetrical session key, whereafter 
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the TTP enciphers the deciphered file with the new session key 
and stores it in the storage medium. 

The TTP also enciphers the new session key with the new 
public storage key and stores said enciphered session key in the 
storage medium. 

"Secure Retrieval" 

For protected recovery of the stored file, and transmission 
thereof to the first and/or second user, the symmetrical session 
key is recovered from the storage medium by deciphering, with the 
private storage key, the stored enciphered session key. The 
recovered session key is subsequently enciphered with the current 
public key of the first or second user, as the case may be, and 
transmitted to said user by way of the transmission channel, 
together with a copy of the file stored in the storage medium, 
enciphered with the session key. After having received the 
enciphered session key, the user may recover the session key 
therefrom by deciphering with his private key. Subsequently, the 
user may decipher the file enciphered with the session key using 
the recovered session key. 

"Digital Sign" 

The public key of the first user may - as is well-known - 
be used to verify a digital signature of the file. A problem 
arises if - which frequently occurs - the first user at a certain 
point in time, after the file has been stored in the TTP server, 
generates a new pair of keys (comprising a pxjblic and a private 
key) and discontinues the old one. For this reason, it is of 
importance to store the (original) ptablic key of the first user 
in the TTP server, since only said original key may be used for 
verifying the digital signature of the stored, later retrievable 
file. 

For this case, the TTP server, after having received the 
enciphered file, also enciphers the - at that point in time 
publicly available - public key of the first user, with the 
public storage key, and stores said enciphered public key in the 
storage mediiam. 

Periodically, the TTP server — as "periodical maintenance" 
— deciphers the enciphered (original) public key, stored in the 
storage medium, of the first user having the private storage key. 
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and enciphers the deciphered public key of the first user having 
the newly generated piiblic storage key, and stores said freshly 
enciphered key in the storage mediviin. 

The piiblic key of the first user may — upon retrieving the 
stored file — be recovered from the storage medivun by 
deciphering, with the private storage key, said stored key. The 
public key of the first user recovered in this manner is 
subsequently enciphered with the — at that point in time 
publicly available — p^lblic key of the retrieving first or 
second user, and transmitted by way of the transmission channel . 
After having received said enciphered public key, the user may 
recover the original p\3blic key of the first user by deciphering 
his current private key; s\ibseguently, the digital signature of 
the recovered file may be verified using the recovered original 
public key of the first user. 



"Time Steuttp" 

If so desired, the TTP server, after the enciphered file 
has been received and stored, may generate a time stamp and store 

20 it, linked to the stored file and enciphered with the public 

storage key, in the storage medium. In the event of retrieving 
the stored file by the first or second user, the time stamp is 
deciphered and subsequently enciphered with the public key valid 
for said user and transmitted to the user. The user may decipher 

25 the enciphered time stamp with his current private key. 



DESCRIPTION OF THE FIGURES 

Below, the invention is illustrated in further detail by 
reference to several figures. Figures 1, 2 cuad 3 illustrate the 
30 functions "Secure Archiving", "Re-enc3:yption" and "Secure 

Retrieval", including the items "Digital Sign" and the "Time 
Stcut^p" . 



FIG. 1: "Secure Archiving" 

35 A file Txt is transmitted from a first user A to a second 

user B after having been enciphered with a syinmetical session key 
SesKey. Said session key is enciphered with the public key 
PubKeyB of the second user. The latter may decipher the session 
key with his private key SecKeyB and the file itself with the 

40 deciphered session key. 
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The session key is also enciphered by the first user with 
the pToblic key of the TTP server PubKeyTTP, which, after having 
received it, deciphers said session key with his private key 
SecKeyTTP. Thereafter the TTP server enciphers the deciphered 
5 session key with a "ptiblic" storage key PubStorKey of the TTP. 

The (transmission) keys of the users A and B each form an 
asyinmetrical pair of keys, KeyPairA and KeyPairB, respectively, 
consisting of PubKeyA and SecKeyA, and PxibKeyB and SecKeyB, 
respectively. The TTP uses the pair of keys KeyPairTTP, 

10 consisting of PubKeyTTP and SecKeyTTP. Finally, for the 

protected storage of an asymmetrical pair of keys StorKeyPair, 
consisting of the keys PubStorKey and SecStorKey; contrary to 
the preceding public keys, PubStorKey nor SecStorKey is publicly 
available, but is used exclusively within the TTP. 

15 The session key (SesKey) PubStorKey enciphered with the 

public storage key PubStorKey and the file (Txt) SesKey enciphered 
with the session key SesKey are siibsequently stored in the 
storage medium DB of the TTP. 

20 "Digital Sign" 

The piiblic key PubKeyA of the first user A may be used to 
verify a digital signature DigSlgn of the file Txt. In this 
case, the TTP server, after having received the enciphered file 
(Txt) SesKey, also enciphers the - at that point in time publicly 

25 available - public key PubKeyA from the first user A, with the 

ptablic storage key PubStorKey, and stores said enciphered public 
key (PubKeyA) PubStorKey in the storage medium DB. 

"Time Steuitp" 

30 After having received and stored the enciphered file 

(Txt) SesKey, the TTP server may generate a time stan^ TSfcan^ and 
store it, after enciphering with the public storage key 
PubStorKey and linked to the stored file, in the storage medium 
DB as (TSteunp) PubStorKey. 

35 

FIG. 2: "Re-encryption" 

As "periodical maintenance", the TTP server deciphers the 
enciphered file (Txt) SesKey stored in the storage mediiim with the 
session key SesKey, which for that purpose is recovered by 
40 deciphering the stored session key (SesKey) PubStorKey with the 
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private storage key SecStorKey. The TTP server subsequently 
generates a fresh pair of storage keys StorKeyPair, comprising a 
new "public" storage key PtibStorKey- and a new private storage 
key SecStorKey', as well as a new version of the symmetrical 
session key SesKey' . The TTP subsequently enciphers the 
deciphered file Txt with the new session key SesKey* and stores 
the file (Txt>SesKey enciphered in this manner in the storage 
medium DB. 

The TTP also enciphers the new session key with the new 
pviblic storage key PubSfcorKey and stores the session key 
(SesKey')PubStorKey' enciphered in this manner in the storage 
medium DB. 

"Digital Sign" 

During the periodical maintenance, the TTP server also 
deciphers the enciphered public key (PiibKeyA) PubStorKey stored in 
the storage medium of the first user with the private storage key 
SecStorKey, and subsequently enciphers the deciphered pxjblic key 
PubKeyA with the newly generated pioblic storage key PubStorKey* 
and stores the public key (PubKeyA) PubStorKey • enciphered in this 
manner in the storage medium. 

"Time Stamp" 

During the periodical maintenance, the TTP server also 
deciphers the enciphered time stamp (TStaa^) PubStorKey stored in 
the storage mediiim with the private storage key SecStorKey, and 
subsequently enciphers the deciphered time stamp with the newly 
generated public storage key PubStorKey' and stores the time 
stamp (TS tamp) PubStorKey' enciphered in this manner in the 
storage medium. 

FIG. 3: "Secvire Retrieval" 

For protected recovery of the file Txt, and the 
transmission thereof to the first and second users A and B, 
respectively, the symmetrical session key SesKey is recovered 
from the storage medium by deciphering, with the private storage 
key SecStorKey, the stored enciphered session key 
(SesKey) PubStorKey. The recovered session key SesKey is 
subsequently enciphered with the then current pxiblic key PubKeyA" 
or PubKeyB", as the case may be, from the querying first or 
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second user A or B, as the case may be, and transmitted to said 
user by way of the transmission channel, together with a copy of 
the file stored in the storage medium, with the user, after 
having received the enciphered session key ( SesKey ) PubKeyA" or 
(SesKey) PubKeyB" , being capable of recovering the session key 
therefrom by deciphering ^ with his private key SecKeyA" or 
SecKeyB", as the case may be, and subsequently being capable of 
deciphering the file (Txt) SesKey using the recovered session key. 

"Digital Sign" 

The original public key PubKeyA of the first user, 
necessary for verifying the digital signature of the recovered 
file, may be recovered from the storage medixam by deciphering, 
with the private storage key SecStorKey, the stored public key 
(PubKeyA) Pubs torKey of the first user enciphered with the public 
storage key. The deciphered public key PubKeyA of the first user 
recovered in this manner is stobsequently enciphered with the 
current piiblic key PubKeyA'' or PubKeyB", as the case may be, of 
the retrieving first or second user A or B, as the case may be. 
and transmitted to the user by way of the transmission channel. 
After having received said enciphered public key 
(PubKeyA) PubKeyA" or (PubKeyA) PubKeyB" , as the case may be, the 
user may recover the original public key PubKeyA of the first 
user therefrom by deciphering, with his current private key 
SecKeyA" or SecKeyB", as the case may be. Subsequently, the 
digital signature DigSign of the file Txt may be verified using 
the recovered public key PubKeyA of the first user. 

It should be noted that it is preferable to - otherwise 
than is shown in FIG. 3 - not transmit the digital signature 
Slgsign xmencipheredly to the first or second user, as the case 
may be, but enciphered with the public key of user A or B, as the 
case may be: instead of "DigSign", the TTP server then transmits 
« (DigSign) PubKeyA* " or " (DigSign) PubKeyB'", as the case may be. 
At the user's side, the digital signature may be recovered by 
deciphering, with the private keys of A and B, SecKeyA and 
SecKeyB, respectively. 

"Time Steunp" 

When the stored file is retrieved by the first or second 
user, the time stan?) is first retrieved by deciphering 
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(TStamp) PubStorKey with the private storage key SecStorKey. The 

recovered time stamp is siibsequently enciphered with the user's 
current piablic key PtibKeyA' or PubKeyB* , as the case may be, and 
transmitted to said user. Thereafter, the user may decipher the 
enciphered time stamp (TStamp) PubKeyA' or (TStamp) PubKeyB' , as 
the case may be, with his current private key SecKeyA* or 
SecKeyB ' , as the case may be . 
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CIiAIMS 



1. System for protectedly storing and managing, in a TTP 
server, copies of digital files which, are transmitted, by way of 

5 a transmission channel, from a first to a second user, 

characterised in that 

a file (Txt) is transmitted from the first user (A) to a 
second user (B) after having been enciphered with a 
symmetrical session key (SesKey) , which session key is 

10 enciphered using the piJblic key (PubKeyB) of a first 

asymmetrical pair of keys (KeyPairB) associated with the 
second user, which second user, after having received it, 
may decipher the session key using the private key 
{SecKeyB) of said first asymmetrical pair of keys 

15 (KeyPairB) and subsequently may decipher the file using the 

session key deciphered in this manner, the session key 
(SesKey) also being enciphered by the first user (A) using 
the public key (PubKeyTTP) of a second asymmetrical pair of 
keys (KeyPairTTP) associated with the TTP server, which TTP 

20 server, after having received it, deciphers said session 

key using the private key (SecKeyTTP) from said second 
asymmetrical pair of keys (KeyPairTTP) , whereafter the TTP 
server enciphers the deciphered session key (SesKey) using 
the public key of a third asymmetrical pair of keys 

25 (StorKeyPair) , hereinafter to be referred to as public 

storage key (PubStorKey) , and stores the session key 
( (SesKey) PubStorKey) enciphered with said storage key, 
together with the file ( (Txt) SesKey) enciphered with the 
session key (SesKey) , in a storage medium (DB) . 

30 

2 . System according to claim 1 , characterised in that , 
periodically, 

the TTP server deciphers the enciphered file ( (Txt) SesKey) 
stored in the storage medium with the session key (SesKey) , 
35 which for that purpose is recovered in advance by 

deciphering the stored enciphered session key 
( (SesKey) PubStorKey) with the private key of the third pair 
of keys (StorKeyPair) , hereinafter to be referred to as the 
private storage key (SecStorKey) 
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the TTP server siibsequently generates a new version of the 
third pair of keys, comprising a new paablic storage key 
(PubStorKey • ) and a new private storage key (SecStorKey ' ) , 
and a new version of the symmetrical session key (SesKey'), 
whereafter the TTP enciphers the deciphered file (Txt) with 
the new session key (SesKey* ) and stores the file 
{ (Txt) SesKey' ) enciphered in this inanner in the storage 
medium (DB) ; 

the TTP server enciphers the new session key (SesKey') with 
the new piiblic storage key ( PiibStorKey ' ) and stores the 
session key ( (SesKey ) PubStorKey' ) enciphered in this 
manner in the storage raediimi (DB) . 

3. System according to claim 1, characterised in that, for 
protected recovery of the file (Txt) and transmission thereof to 
the first user (A) or the second user (B) , as the case may be, 
the symmetrical session key (SesKey) is recovered from the 
storage medium by deciphering, with the private storage key 
(SecStorKey) , the stored enciphered session key 

{ (SesKey) PubStorKey) , whereafter the recovered session key 
(SesKey) is subsequently enciphered with the ctirrent public key 
(PubKeyA' or PtjbKeyB', as the case may be) of the first or second 
user (A or B, as the case may be) , and is transmitted to the user 
by way of the transmission channel, together with a copy of the 
file ( (Txt) SesKey) stored in the storage medixan, with the user, 
after having received the enciphered session key 

( (SesKey) PubKeyA" or (SesKey) PubKeyB ' , as the case may be), being 
capable of recovering the session key therefrom by deciphering 
using the user ' s private key ( SecKeyA ' or SecKeyB • , as the case 
may be) , and subsequently being capable of deciphering the 
enciphered file ( (Txt) SesKey) using the recovered session key. 

4. System according to claim 1, the public key (PubKeyA) of 
the first user (A) being used to verify a digital signature 
(DigSign) of the file (Txt), characterised in that the TTP 
server, after having received the enciphered file ( (Txt) SesKey) , 
also enciphers the then current public key (PiibKeyA) of the first 
user (A) using the public storage key (PubStorKey) , and stores 
said enciphered public key { (PubKeyA) PubStorKey) in the storage 
medium (DB) . 
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5. System according to claim 4, characterised in that, 
period! cal ly , 

the TTP server deciphers the enciphered piiblic key 

(PubKeyA) of the first user stored in the storage medium 
with the private storage key (SecStorKey) ; 
the TTP server subsequently generates a new version of the 
third pair of keys, comprising a new public storage key 

(PubStorKey ' ) and a new private storage key (SecStorKey'); 
the TTP server enciphers the deciphered public key 

(P\abKeyA) of the first user with the new pxiblic storage key 

( PxibStorKey ' ) and stores said public key 

( {PubKeyA)PubStorKey' ) , enciphered in this manner, in the 
storage medium. 

6 . System according to claim 4 , characterised in that the 
public key (PubKeyA) of the first user is recovered from the 
storage medium by deciphering, with the private storage key 
(SecStorKey) , the stored enciphered public key 

C (PiibKeyA)P\ibStorKey> of the first user, 

that said original public key (PubKeyA) recovered in this manner 
is subsequently enciphered with the current public key (PubKeyA' 
or PubKeyB • , as the case may be) of the first or second user (A 
or B, as the case may be) , and is transmitted by way of the 
transmission channel to the first or second user, as the case may 
be, with the user, after having received said enciphered public 
key { (PubKeyA) PxjbKeyA' or (PubKeyA) PubKeyB' , as the case may be) 
being capable of recovering the original public key (PubKeyA) of 
the first user therefrom by deciphering with his current private 
key (SecKeyA* or SecKeyB', as the case may be), and subsequently 
being capable of verifying the digital signature (DigSign) of the 
file (Txt) using the original pi±>lic key (PubKeyA) of the first 
user recovered in this manner. 

7. System according to claim 5, characterised in that the 
digital signature (DigSign) is enciphered with the current public 
key (PubKeyA' or PubKeyB', as the case may be) of the first or 
second user (A or B, as the case may be) , and is transmitted to 
said first or second user, as the case may be, whereafter the 
receiving user recovers the digital signature by deciphering the 
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received, enciphered digital signature ( (DigSign) PubKeyA' or 
(DigSign) PubKeyB ' , as the case may be) with his private key 
(SecKeyA' or SecKeyB', as the case may be) . 

8. System according to claim 1, characterised in that the TTP 
server, after having received the enciphered file ( (Txt) SesKey) 
generates a time stamp {TStamp) and stores it, linked to the 
stored file and enciphered with the pxoblic storage key 
(PtibStorKey) , in the storage medivun (DB) . 

9. System according to claim 8, characterised in that, in the 
event of retrieving the stored file by the first or second user 
(A or B, as the case may be) the enciphered time stsaiqp 

( (TStan^)) PubStorKey) is recovered by deciphering with the private 
storage key (SecStorKey) , the recovered time stamp is 
stibsequently enciphered with the current public key (PubKeyA* or 
PvibKeyB', as the case may be) for the querying user, and is 
transmitted to said user, whereafter the user may decipher the 
enciphered time stanip { (TStairi))P»3bKeyA' or (TStamp) PubKeyB ' , as 
the case may be) with the private key (SecKeyA' or SecKeyB' , as 
the case may be) current for said user. 
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